THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-21394

Dynamics 365 Field Service Spoofing Vulnerability

Reserved:2023-12-08
Published:2024-02-13
Updated:2024-06-11

Description

Dynamics 365 Field Service Spoofing Vulnerability



HIGH: 7.6CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N/E:U/RL:O/RC:C

Problem types

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product status

9.0 before 9.1.25.17
affected

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21394 (Dynamics 365 Field Service Spoofing Vulnerability) vendor-advisory

cve.org CVE-2024-21394

nvd.nist.gov CVE-2024-21394

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-21394